Cyberattack-alert system could be model for U.S.

March 8, 2011
Cyber Security, FedCyber Wire
No Comment

via Network World

An ambitious project to create a statewide cyber-alert “early warning” system in the state of Washington to link with the federal Department of Homeland Security (DHS) is starting to take shape and could be a cybersecurity monitoring model for other states.

Security information and event management tools require fine-tuning

The “Public Regional Information Security Event Management” system (PRISEM) is designed to offer an online early warning about everything from botnet incursions on compromised desktops to possible full-fledged cyber-attacks from terrorists. As now designed, PRISEM will use customized security and information event management (SIEM) equipment from NitroSecurity that’s being kept at the University of Washington’s Applied Physics Lab where researchers will assist on the project, says Michael Hamilton, CISO of Seattle.

PRISEM is intended to be a central security-event and analysis point to aggregate real-time log and event information. Such alerts would be generated from local and state agency networks — and possibly private companies — and offer an early warning system for possible cyber-attacks or botnet activities. DHS would be kept in the loop on PRISEM’s security findings.

Story here.